Legal claims defining the scope of protection, as filed with the USPTO.
1. A method of using a computer to deliver content to a client, comprising: using a computer to perform steps comprising: parsing a request received from the client for a content identifier identifying requested content, client classification information describing capabilities of the client, and authentication information; determining by the computer whether the authentication information is valid; determining a policy for the requested content, the policy specifying rules for determining access rights for the content responsive to the capabilities of the client and whether the authentication information is valid; determining access rights for the requested content responsive to the capabilities of the client, the policy, and whether the authentication information is valid; responsive to the authentication information being invalid, determining a transformation of the requested content to a restricted format that provides for enforcement of the determined access rights for the requested content at the client; responsive to the authentication information being invalid, performing the determined transformation of the requested content to produce transformed requested content; and providing the transformed requested content and the determined access rights to the client.
2. The method of claim 1 , wherein the client classification information includes an identifier of the client and the method further comprises: determining the capabilities of the client based on the identifier of the client.
3. The method of claim 2 , wherein determining the capabilities of the client comprises: accessing a client capabilities table that cross-references the client identifier to a set of capabilities of clients having the client identifier.
4. The method of claim 1 , wherein determining access rights for the requested content comprises: identifying access rights restrictions for the requested content specified by the policy; examining the capabilities of the client to identify capabilities adapted to enforce the identified access rights restrictions; and generating access rights metadata associated with the requested content and adapted to cause the identified capabilities of the client to enforce the identified access rights restrictions at the client.
5. The method of claim 1 , further comprising: generating access rights metadata based on the determined access rights, the access rights metadata adapted to enforce the determined access rights at the client; associating the access rights metadata with the requested content; and providing the access rights metadata to the client.
6. The method of claim 1 , wherein the requested content includes tags identifying sensitive or confidential information, and wherein performing the determined transformation comprises: removing the information identified by the tags from the requested content.
7. The method of claim 1 , wherein the authentication information authenticates one or more of an agent executing on the client, the client, and an end-user of the client.
8. A non-transitory computer-readable storage medium storing executable computer program instructions for delivering content to a client, the computer program instructions comprising instructions for: parsing a request received from the client for a content identifier identifying requested content, client classification information describing capabilities of the client, and authentication information; determining whether the authentication information is valid; determining a policy for the requested content, the policy specifying rules for determining access rights for the content responsive to the capabilities of the client and whether the authentication information is valid; determining access rights for the requested content responsive to the capabilities of the client, the policy, and whether the authentication information is valid; responsive to the authentication information being invalid, determining a transformation of the requested content to a restricted format that provides for enforcement of the determined access rights for the requested content at the client; responsive to the authentication information being invalid, performing the determined transformation of the requested content to produce transformed requested content; and providing the transformed requested content and the determined access rights to the client.
9. The non-transitory computer-readable storage medium of claim 8 , wherein the client classification information includes an identifier of the client, further comprising instructions for: determining the capabilities of the client based on the identifier of the client.
10. The non-transitory computer-readable storage medium of claim 9 , wherein determining the capabilities of the client comprises: accessing a client capabilities table that cross-references the client identifier to a set of capabilities of clients having the client identifier.
11. The non-transitory computer-readable storage medium of claim 8 , wherein determining access rights for the requested content comprises: identifying access rights restrictions for the requested content specified by the policy; examining the capabilities of the client to identify capabilities adapted to enforce the identified access rights restrictions; and generating access rights metadata associated with the requested content and adapted to cause the identified capabilities of the client to enforce the identified access rights restrictions at the client.
12. The non-transitory computer-readable storage medium of claim 8 , further comprising instructions for: generating access rights metadata based on the determined access rights, the access rights metadata adapted to enforce the determined access rights at the client; associating the access rights metadata with the requested content; and providing the access rights metadata to the client.
13. The non-transitory computer-readable storage medium of claim 8 , wherein the requested content includes tags identifying sensitive or confidential information, and wherein performing the determined transformation comprises: removing the information identified by the tags from the requested content.
14. A computer system for delivering content to a client, the computer system comprising: a non-transitory computer-readable storage medium storing executable computer program instructions comprising instructions for: parsing a request received from the client for a content identifier identifying requested content, client classification information describing capabilities of the client, and authentication information; determining whether the authentication information is valid; determining a policy for the requested content, the policy specifying rules for determining access rights for the content responsive to the capabilities of the client and whether the authentication information is valid; determining access rights for the requested content responsive to the capabilities of the client, the policy, and whether the authentication information is valid; responsive to the authentication information being invalid, determining a transformation of the requested content to a restricted format that provides for enforcement of the determined access rights for the requested content at the client; responsive to the authentication information being invalid, performing the determined transformation of the requested content to produce transformed requested content; and providing the transformed requested content and the determined access rights to the client; and a computer processor for executing the computer program instructions.
15. The computer system of claim 14 , wherein the client classification information includes an identifier of the client and further comprising instructions for: determining the capabilities of the client based on the identifier of the client.
16. The computer system of claim 14 , wherein determining access rights for the requested content comprises: identifying access rights restrictions for the requested content specified by the policy; examining the capabilities of the client to identify capabilities adapted to enforce the identified access rights restrictions; and generating access rights metadata associated with the requested content and adapted to cause the identified capabilities of the client to enforce the identified access rights restrictions at the client.
17. The computer system of claim 14 , further comprising instructions for: generating access rights metadata based on the determined access rights, the access rights metadata adapted to enforce the determined access rights at the client; associating the access rights metadata with the requested content; and providing the access rights metadata to the client.
Unknown
June 18, 2013
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.